So this October 2025 F5 security notification is pretty wild because of the sheer volume of vulnerabilities disclosed: more than 30 high-severity CVEs (!) and around a dozen medium-severity ones in a single release cycle. This affects almost every F5 product family, BIG-IP (all modules), BIG-IP Next, F5OS, and related components. Something we don’t see very often... and a lot of these vulnerabilities score above 8.0; remote exploitation, denial-of-service or privilege escalation. Also, the number of affected software branches (from 15.x through 17.x) means most F5 deployments are touched in some way. YMMV. In short, this quarter’s bulletin is probably F5’s heaviest security updates ever. If you run F5 products, patch now. my.f5.com/manage/s/article/K…

We at @emproofsecurity open-sourced a free firmware reverse engineering workshop for self-study. Topics: ELF analysis, cracking, malware triage, embedded-Linux, bare-metal, crypto-key extraction, anti-analysis. Docker setup and solutions included. github.com/emproof-com/works…

We won second place in @DARPA's AIxCC with Buttercup! Our CRS is now open source for everyone to use.

We're setting up for the @DARPA AIxCC results in Track 2. Andrew Carney is speaking in 5 minutes... results coming soon.

This number isn’t getting the attention it deserves. 152 USD is bloody good

I want to acknowledge the immense amount of work put in by multiple teams over 10 years to compete in AIxCC It takes a lot of work to come 2nd. Congrats @trailofbits and @dguido The final scores have their own story that will get fleshed out in coming days/years.

Team Atlanta wins the AIxCC Grand Final! 🏆

Code Reviews...

A picture of a broken bone being mended by someone.

Goodbye my books. These books were part of my life for over a decade. Thank you @12Knocksinna I definitely won’t miss babysitting isinteg and eseutil jobs moving at 5gb/hr.

Looks like @BlueHatIL talks are online now, so here’s my talk for anyone who wanted to learn about the latest episode of KASLR and couldn’t make it: piped.video/Dk2rLO2LC6I

This is like "VT-x 101". The essence of HW-assisted VT, everything needed to virtualize Windows on-the-fly, and a bit of security in 2 days. It misses a ton of fun discussions and exercises that are in my 4 days class, but I am giving back to the community that helped me learn.

In honor of @yo_yo_yo_jbo stack of x.com/yo_yo_yo_jbo/status/19… I am renaming ystack to #YOstack What is #YOstack ? A stack of CVEs with sequential numbering that introduce a fundamental change in the software. Prev #YOstack - @yarden_shafir for the stack of CVEs in KASLR

Intel VT-rp community.intel.com/t5/Blogs…

Good research is mostly about knowing what questions to ask, not about answering questions that other people are asking.

Important news: Microsoft is working to bring SMAP into Windows

The threat actors don’t have cissps they have Lamborghini’s. #Cyber

.@Volexity’s latest blog post describes in detail how a Russian APT used a new attack technique, the “Nearest Neighbor Attack”, to leverage Wi-Fi networks in close proximity to the intended target, while the attacker was halfway around the world. volexity.com/blog/2024/11/22… #dfir